reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

Dictionary collection project such as Pentesing, Fuzzing, Bruteforce and BugBounty. 渗透测试、SRC漏洞挖掘、爆破、Fuzzing等字典收集项目。

GooFuzz is a tool to perform fuzzing with an OSINT approach, managing to enumerate directories, files, subdomains or parameters without leaving evidence on the target's server and by means of advanced Google searches (Google Dorking).

MagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common vulnerabilities, all this saving the results obtained in an organized way in directories and with various formats.

一键调用subfinder+ksubdomain+httpx 强强联合 从域名发现-->域名验证-->获取域名标题、状态码以及响应大小 最后保存结果,简化重复操作命令

Crtsh Subdomain Enumeration | This bash script makes it easy to quickly save and parse the output from https://crt.sh website.

Enumerate Subdomains Through Google Dorks

CHOMTE.SH is a powerful shell script designed to automate reconnaissance tasks during penetration testing. It utilizes various Go-based tools to gather information and identify the attack surface, making it a valuable asset for bug bounty hunters and penetration testers.

A very (very) FAST and simple subdomain finder based on online & free services. Without any configuration requirements.

a simple discovery script that uses popular tools like subfinder, amass, puredns, alterx, massdns and others

A wrapper around tools used for subdomain enumeration, to automate the workflow, on a given domain, written in bash.

Hacks For Subdomain Enumeration

Find alive host from dumped subdomains, huge domain list , alive subdomains

Script that performs a scan of a specific domain, using the following tools: Subfinder, assetfinder, amass and httpx. The result is merged into one file.

A domain recon tool capable of finding subdomains and subnets and then harvesting HTTP screen shots and whois data about them.

Multi-functional Web Recon & Vulnerability Scanner Tool

A bash script that is creating subdomain with given parameters with Nginx in the directory /var/www

Find subdomains by searching public certificate records

An automation tool that scans sub-domains, sub-domain takeover and then filters out xss, ssti, ssrf and more injection point parameters.

💥 This tool is intended for bounty hunters, the script installs and launches the best set of tools for expanding the attack surface, for Web Sites, portals, and Organizations.